Slideshare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our User Agreement and Privacy Policy.

Slideshare uses cookies to improve functionality and performance, and to provide you with relevant advertising. If you continue browsing the site, you agree to the use of cookies on this website. See our Privacy Policy and User Agreement for details.

13.
Why 64bit seqnumcan send via 8bit length on the wire?
next epoch
epoch
prevepoch
last_seq_no+ 1
seq_noon wire
seq_noon wire
seq_noon wire
Candidate#1
Candidate#2
Candidate#3
the real seqno
is the nearest of last_seq_no+1
sequence number length (255)
0 ～
～2^64-1
•Less than 256 frames on the fly. But their arrival is not ordered.
•Endpoint should remember the last_seq_nothat was received lately.
•Choisethe nearest number to last_seq_no+1 from the epoch number + received 8bit number.
•If we received very old frame, it can’t be decrypted because seqis used in IV.

25.
1-RTT (normal)
Client
Server
CHLO (STK, VER, CCS, PDMD, SCID)
REJ(STK, SNO, SCFG)
CHLO(STK, SNO, SCID)
Encrypted Application Data
I’ve got a new STK and
SCID. I send a full CHLO.
You STK is expired.
I give you a new Source
Address Token and
Server Config.
It’s been a long time
since I connected you.

26.
0-RTT (repeated resumption)
Client
Server
CHLO(STK, SNO, SCID)
Encrypted Application Data
I remember the server
address token and
sever config. It’s a
repeated access in a
short time.
You have a right STK
and SCID. So let’s begin
to use the previous
shared master secret.

32.
Retransmit a lost frame as a new stream
STREAM_FRAME
ACK(largest_observed: 11, missing: [10])
Lost
id=9
id=10
id=11
id=13 retransmit as id=10
id=12
id=10 was lost.
retransmit it as a new
stream(id=13)
Non-Blocked!
Retransmitted as a
new stream